mfaValues() ->get(['id', 'method']) ->groupBy('method'); return view('mfa.setup', [ 'userMethods' => $userMethods, ]); } /** * Show a view that generates and displays a TOTP QR code. */ public function totpGenerate(TotpService $totp) { if (session()->has(static::TOTP_SETUP_SECRET_SESSION_KEY)) { $totpSecret = decrypt(session()->get(static::TOTP_SETUP_SECRET_SESSION_KEY)); } else { $totpSecret = $totp->generateSecret(); session()->put(static::TOTP_SETUP_SECRET_SESSION_KEY, encrypt($totpSecret)); } $qrCodeUrl = $totp->generateUrl($totpSecret); $svg = $totp->generateQrCodeSvg($qrCodeUrl); return view('mfa.totp-generate', [ 'secret' => $totpSecret, 'svg' => $svg, ]); } /** * Confirm the setup of TOTP and save the auth method secret * against the current user. * @throws ValidationException */ public function totpConfirm(Request $request) { $totpSecret = decrypt(session()->get(static::TOTP_SETUP_SECRET_SESSION_KEY)); $this->validate($request, [ 'code' => [ 'required', 'max:12', 'min:4', new TotpValidationRule($totpSecret), ] ]); MfaValue::upsertWithValue(user(), MfaValue::METHOD_TOTP, $totpSecret); $this->logActivity(ActivityType::MFA_SETUP_METHOD, 'totp'); return redirect('/mfa/setup'); } }